Upload File

a story of a security...

  • Home
  • Documents
  • A Story of A Security Professionalmiss.in.th/MiSSConf(SP4.0)/slide/KhunNarudom-MiSSConfSP4.pdfConclusion You may not know what technology will be in the next 10 years so the fundamental
18
A Story of A Security Professional A Story of A Security Professional MiSSConf (SP4.0) MiSSConf (SP4.0) March 31, 2018 March 31, 2018

Upload: others

Post on 22-Jan-2020

0 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: A Story of A Security Professionalmiss.in.th/MiSSConf(SP4.0)/slide/KhunNarudom-MiSSConfSP4.pdfConclusion You may not know what technology will be in the next 10 years so the fundamental

A Story of A Security ProfessionalA Story of A Security ProfessionalMiSSConf (SP4.0)MiSSConf (SP4.0)

March 31, 2018March 31, 2018

Page 2: A Story of A Security Professionalmiss.in.th/MiSSConf(SP4.0)/slide/KhunNarudom-MiSSConfSP4.pdfConclusion You may not know what technology will be in the next 10 years so the fundamental

WhoAmI

● Lazy Blogger– Japan, Security, FOSS, Politics, Christian– http://narudomr.blogspot.com

● Information Security since 1995● Head of IT Security and Solution Architecture, Kiatnakin Bank● Consultant for OWASP Thailand Chapter● Committee Member, Cloud Security Alliance (CSA), Thailand

Chapter● Committee Member, National Digital ID Project, Technical

Team● Chief Information Security Officer (CISO) of the Year 2017,

NetworkWorld Asia

Page 3: A Story of A Security Professionalmiss.in.th/MiSSConf(SP4.0)/slide/KhunNarudom-MiSSConfSP4.pdfConclusion You may not know what technology will be in the next 10 years so the fundamental

Enter the Digital World

Page 4: A Story of A Security Professionalmiss.in.th/MiSSConf(SP4.0)/slide/KhunNarudom-MiSSConfSP4.pdfConclusion You may not know what technology will be in the next 10 years so the fundamental

Enter the Computer World

Page 5: A Story of A Security Professionalmiss.in.th/MiSSConf(SP4.0)/slide/KhunNarudom-MiSSConfSP4.pdfConclusion You may not know what technology will be in the next 10 years so the fundamental

Information Security First Start

● In 1995, started working with Information and Telecommunication Services (ITS) → NETOne

● Business Development● Raptor Systems Inc’s

Eagle Firewall– The First Proxy Type

Firewall– Integration

● Sun OS, Windows NT● RSA SecureID● IPSec VPN

Page 6: A Story of A Security Professionalmiss.in.th/MiSSConf(SP4.0)/slide/KhunNarudom-MiSSConfSP4.pdfConclusion You may not know what technology will be in the next 10 years so the fundamental

Internet Application Era

Page 7: A Story of A Security Professionalmiss.in.th/MiSSConf(SP4.0)/slide/KhunNarudom-MiSSConfSP4.pdfConclusion You may not know what technology will be in the next 10 years so the fundamental

Embedded System Development

Page 8: A Story of A Security Professionalmiss.in.th/MiSSConf(SP4.0)/slide/KhunNarudom-MiSSConfSP4.pdfConclusion You may not know what technology will be in the next 10 years so the fundamental

Embedded System Development

An Example of A Device Running with My Code

Page 9: A Story of A Security Professionalmiss.in.th/MiSSConf(SP4.0)/slide/KhunNarudom-MiSSConfSP4.pdfConclusion You may not know what technology will be in the next 10 years so the fundamental

Solution Architect

Page 10: A Story of A Security Professionalmiss.in.th/MiSSConf(SP4.0)/slide/KhunNarudom-MiSSConfSP4.pdfConclusion You may not know what technology will be in the next 10 years so the fundamental

Certification???

Page 11: A Story of A Security Professionalmiss.in.th/MiSSConf(SP4.0)/slide/KhunNarudom-MiSSConfSP4.pdfConclusion You may not know what technology will be in the next 10 years so the fundamental

Security Operation and Data Analytics

BehaviorAnalysis

FunctionalAnalysis

StructuralAnalysis

Security PolicyDate/

Time/Source Match

System StatusSystem

Exposure

Vulnerability Database

Message Analysis

Intrusion Path

Alert Stats

www.cust1.comhack1.com

hack2.com

mail.cust1.comhack1.com

hack3.com

www.cust2.comhack2.com

hack3.com

hack1.comwww.cust1.com

mail.cust1.com

hack2.comwww.cust1.com

www.cust2.com

hack3.commail.cust1.com

www.cust2.com

Source &Target Correlation

ContextsContexts

Page 12: A Story of A Security Professionalmiss.in.th/MiSSConf(SP4.0)/slide/KhunNarudom-MiSSConfSP4.pdfConclusion You may not know what technology will be in the next 10 years so the fundamental

Application Security

Page 13: A Story of A Security Professionalmiss.in.th/MiSSConf(SP4.0)/slide/KhunNarudom-MiSSConfSP4.pdfConclusion You may not know what technology will be in the next 10 years so the fundamental

Turn from IT Vendors to an IT Consumer

Page 14: A Story of A Security Professionalmiss.in.th/MiSSConf(SP4.0)/slide/KhunNarudom-MiSSConfSP4.pdfConclusion You may not know what technology will be in the next 10 years so the fundamental

● Vendors’ Events● Technology Event Organizers’ Events

Social Contribution

Page 15: A Story of A Security Professionalmiss.in.th/MiSSConf(SP4.0)/slide/KhunNarudom-MiSSConfSP4.pdfConclusion You may not know what technology will be in the next 10 years so the fundamental

National Projects

Page 16: A Story of A Security Professionalmiss.in.th/MiSSConf(SP4.0)/slide/KhunNarudom-MiSSConfSP4.pdfConclusion You may not know what technology will be in the next 10 years so the fundamental

Awards

Page 17: A Story of A Security Professionalmiss.in.th/MiSSConf(SP4.0)/slide/KhunNarudom-MiSSConfSP4.pdfConclusion You may not know what technology will be in the next 10 years so the fundamental

Conclusion

● You may not know what technology will be in the next 10 years so the fundamental principles are essential much more than what you can do today.

● Every circumstances happen to your life are worthy, even good or bad, even you like or not. If you learn you can use them in the future.

● Teaching or sharing is the best way to sharpen your knowledge and skills but don’t use other people’s materials.

Page 18: A Story of A Security Professionalmiss.in.th/MiSSConf(SP4.0)/slide/KhunNarudom-MiSSConfSP4.pdfConclusion You may not know what technology will be in the next 10 years so the fundamental

Computing the Fundamental Frequency Variation …heldner/posters/laskowskiACOUSTICS2008.slide… · interpretation of discourse markers dialogue act tagging identification of speech

A One-Slide Summary of Quantum Mechanicspollux.chem.umn.edu/4502/3502_lecture_01.pdf · A One-Slide Summary of Quantum Mechanics Fundamental Postulate: O ! = a ! operator wave function

Slide 1 of 46 Fundamental Simulation Concepts Chapter 2

Chapter 5: Statistics for Radiation Measurement · To familiarize the student with the fundamental concepts of statistics . for radiation measurement . Slide set ... USA) Slide set

Incidence of Work-life Imbalance among Faculty …shodhganga.inflibnet.ac.in/bitstream/10603/28945/11/11_chapter 5.pdfConclusion & Recommendations 204 Incidence of Work-life Imbalance

David Doll. *In one slide The particles represent our current theory of fundamental physics Many outstanding questions: “Gravity?”, “Neutrino Mass?”,

Ayanoglu AM Radio Receivers group2 - The Henry …eecs.richardnelson.com/.../Reports/AyanogluAMRadioReceiversgroup2.pdfConclusion ... widely considered the inventor of the FM radio

Comparative Analysis Of Phytochemicals, Nutritional And ...vitilux.com › wp-content › uploads › 2015 › 12 › File-no.-2.pdfConclusion The above study indicated that Moringa

Slide Materi cloud computing fundamental

A One-Slide Summary of Quantum Mechanics · A One-Slide Summary of Quantum Mechanics Fundamental Postulate: O ! = a! ... M M O M FN1 – ESN1 FN2 – ESN2 L F ... locked in STO-3G

Fundamental Forces Non-Fundamental

Slide 1/25 Amplitude Quantization as a Fundamental Property of Coupled Oscillator Systems W. J. Wilson Department of Engineering and Physics University

The Relational Algebra Database System-dww. Slide 6a-2 Database System-dww Chapter Outline Fundamental Operator Deliverable & Additional Operator

CONCLUSION - Shodhgangashodhganga.inflibnet.ac.in/bitstream/10603/14235/11/11_chapter 6.pdfCONCLUSION The history of ... that India has been caught-up in an ongoing debate with the

Slide jornada 1 - Fundamental 1

Age-Based Sleep Stage Estimation by Evolutionary Algorithmfileadmin.cs.lth.se/ai/Proceedings/AAAI SSS 2012/01/SS12-05-017.pdfconclusion. Related Work Historically, the sleep stage,

OPNFV TSC Member Distinguished Engineer, Cisco “It is a fundamental principle of social philosophy, ... • Slide 8: – Doug McIroy http

Autonomic Networking – Definitions and Design Goals · Autonomic Networking – Definitions and Design Goals ... (next slide) Took out ... Autonomic Networking – Fundamental Concepts

Fundamental Skills of Algebra Slide 3 / 224

Introduction to Programming. COMP104 Introduction / Slide 2 Objectives * To learn fundamental problem solving techniques * To learn how to design a program

Fundamental of Calculus (Presentation Slide)A

Fundamental mathematical techniques reviewed · Fundamental mathematical techniques reviewed: ... 3E Chapter 2 / Slide 1 . Solutions From Simpler Cases • Mathematical induction

Fundamental Particles, Fundamental Questions

Programming Fundamental Slide No.1

Femtosecond laser capsulotomypalanker/publications/fs capsulotomy JCRS 2011.pdfCONCLUSION: The femtosecond laser produced capsulotomies that were more precise, accurate, reproducible,

Minimization Algorithms for Discrete Convex …shioura/slide/Mminalgo.pdfMinimization of L‐/M‐convex Functions •fundamental problems in discrete convex analysis •many examples

Part I Fundamental Concepts - University of California ... · Part I Fundamental Concepts. Spring 2006 Parallel Processing, Fundamental Concepts Slide 2 About This Presentation Edition

Fundamental Study of Aero Acoustic Emission of Single … · Fundamental Study of Aero Acoustic Emission of Single ... Slide 11 Streamwise Reynolds Stresses ... – Good farfield

Residual congestion in Acute Decompensated Heart Failure ...eprints.gla.ac.uk/163234/7/163234.pdfConclusion: Most patients with acute decompensated heart failure still have residual

Autonomous Driving in the Logistics Industry A1129922/FULLTEXT01.pdfConclusion: The main contribution is a model representing the impact of autonomous driving on competitive advantages

Valuation: Science, Art, or Craft? Valuation-Slide...The setting 2 Equity Valuation: Science, Art, or Craft? Fundamental analysts/managers try to determine the intrinsic (fundamental)

Preparing An Effective Scientific Postercse.ksu.edu/files/cse/CSE Symposium PosterPresentation 2011.pdfConclusion It is critical that ... this research project report? Research Summary

Slide Ruler. X 5" On today’s menu... What happened with Gravity Noise The tool today Fundamental Limitations Magical Christmas Land (Where

Essential University Physics - Alfredo Caguao · Slide 21-29 Summary • Gauss’s lawis one of the four fundamental laws of electromagnetism. & &) & &

Slide 1 of 11 Fundamental Theorem of Calculus - Confex€¦ · Slide 1 of 11 Fundamental Theorem of Calculus Approaches, Problems, Proof, More problems NCTM Regional Chicago, November,